Actions
Feature #3357
closedHow to revoke OSD for good?
Status:
Rejected
Priority:
Low
Assignee:
-
Category:
-
Target version:
-
% Done:
0%
Source:
Tags:
Backport:
Reviewed:
Affected Versions:
Pull request ID:
Description
Use case: As an admin, a machine I had running 8 OSDs was compromised. The attacker got hold of all the secrets the OSDs had at the time, and the bootstrap-osd key. The machine is taken offline, the disk imaged and reinstalled. The original vulnerability has been fixed. How do I prevent further access to my data?
- need to remove the compromised OSD keys from mons
- need to rotate bootstrap-osd key, distribute new key
- shared OSD service key rotation should have happened by now already
As a bonus round, what if client.admin key got compromised too?
Actions